SMBLoris is a remote, unauthenticated application-level denial of service (DoS) attack against Microsoft Windows operating systems. It is caused by a very old memory-handling bug in the Server Message Block (SMB) network protocol implementation. The vulnerability lies in the way SMB packets are processed and memory is allocated. It was discovered by two RiskSense security researchers — Sean […]

Read More →

Microsoft August 2017 Patch Tuesday addresses 48 security vulnerabilities in six of it’s main product categories. Amoung these 25 CVE’s are rated as Critical, 21 are rated as Important and 2 are rated as Moderate. More than two dozen remote code execution vulnerabilities are addressed in August 2017 security update. Among these security vulnerabilities, two […]

Read More →

Adobe has released four security updates for Adobe Flash Player (APSB17-23), Adobe Experience Manager (APSB17-26), Adobe Acrobat and Reader (APSB17-24) and Adobe Digital Editions (APSB17-27) which covers a total of 80 CVE’s. Adobe Flash Player address a critical type confusion vulnerability that could lead to code execution and an important security bypass vulnerability that could […]

Read More →

Oracle has released 308 security updates as part of the quarterly patch release cycle. The Oracle Critical Patch Update – July 2017 provides fixes for a wide range of product families including Oracle Database Server, Oracle BI Publisher, Oracle Business Intelligence Enterprise Edition,  Oracle Endeca Server, Oracle Fusion Middleware, Oracle Outside In Technology,  Oracle WebLogic […]

Read More →

Microsoft July 2017 Patch Tuesday addresses 51 security vulnerabilities in addition to 3 vulnerabilities for Adobe Flash Player. 19 vulnerabilities are rated as Critical, 32 are rated as Important and 3 are rated as Moderate. 12 Critical vulnerabilities affect Microsoft Scripting Engine which can result in Remote Code Execution. The other critical vulnerabilities affect Internet Explorer, Edge, and Windows. […]

Read More →

Adobe has released two security updates for Adobe Flash Player (APSB17-21) and Adobe Connect (APSB17-22) which covers a total of 6 CVEs. Adobe Flash Player addresses a critical vulnerability that could potentially allow an attacker to execute arbitrary code and resolves two important vulnerabilities that could lead to Information disclosure and Memory address disclosure. Adobe Connect addresses two […]

Read More →